CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8767 matches found

Cvelist•added 2026/01/22 4:51 p.m.•16 views

CVE-2025-63017 WordPress WerkStatt plugin plugin <= 1.6.6 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes WerkStatt Plugin werkstatt-plugin allows PHP Local File Inclusion.This issue affects WerkStatt Plugin: from n/a through = 1.6.6...

7.5CVSS0.00515EPSS

Exploits0References1

CVE•added 2026/01/22 4:51 p.m.•9 views

CVE-2025-54003

CVE-2025-54003 : Affected product is Mikado-Themes Depot (WordPress theme) with Depot depot. The issue is an improper filename control in include/require handling, enabling PHP Local File Inclusion (LFI). Affects Depot versions from n/a through

8.1CVSS5.5AI score0.00504EPSS

Exploits0References1

ATTACKERKB•added 2026/01/22 4:51 p.m.•2 views

CVE-2025-54003

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Mikado-Themes Depot depot allows PHP Local File Inclusion.This issue affects Depot: from n/a through = 1.16...

9.8CVSS5.4AI score0.00504EPSS

Exploits0References2

Cvelist•added 2026/01/22 4:51 p.m.•18 views

CVE-2025-54003 WordPress Depot theme <= 1.16 - Local File Inclusion vulnerability

8.1CVSS0.00504EPSS

Exploits0References1

CVE•added 2026/01/22 4:51 p.m.•10 views

CVE-2025-50003

CVE-2025-50003 — Amuli WordPress Theme Local File Inclusion (LFI) Affects: Amuli WordPress Theme (Amuli) vulnerable component: PHP code handling Include/Require statements.Root cause: Improper control of filename for include/require, enabling PHP Local File Inclusion.Impact: Local file disclosure...

8.1CVSS5.5AI score0.00504EPSS

Exploits0References1

Cvelist•added 2026/01/22 4:51 p.m.•18 views

CVE-2025-49994 WordPress Athens theme <= 1.1.6 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ovatheme Athens athens allows PHP Local File Inclusion.This issue affects Athens: from n/a through = 1.1.6...

8.1CVSS0.00519EPSS

Exploits0References1

Cvelist•added 2026/01/22 4:51 p.m.•18 views

CVE-2025-50003 WordPress Amuli theme <= 2.3.0 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in axiomthemes Amuli amuli allows PHP Local File Inclusion.This issue affects Amuli: from n/a through = 2.3.0...

8.1CVSS0.00504EPSS

Exploits0References1

ATTACKERKB•added 2026/01/22 4:51 p.m.•1 views

CVE-2025-50003

9.8CVSS5.4AI score0.00504EPSS

Exploits0References2

CVE•added 2026/01/22 4:51 p.m.•7 views

CVE-2025-47474

CVE-2025-47474 is an Unauthenticated Local File Inclusion flaw in the WordPress theme Anarkali (Ninetheme) up to version 1.0.9, caused by improper control of include/require filenames in PHP. The vulnerability affects Anarkali

8.1CVSS5.5AI score0.00561EPSS

Exploits0References1

CNNVD•added 2026/01/22 12:0 a.m.•5 views

WordPress plugin Barberry has a security vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

8.1CVSS5.8AI score0.00433EPSS

Exploits0References1

Positive Technologies•added 2026/01/22 12:0 a.m.•5 views

PT-2026-4078

Name of the Vulnerable Software and Affected Versions ThemeGoods Photography versions prior to 7.7.5 Description The software contains a flaw due to improper control of filename for include/require statements, specifically a PHP Remote File Inclusion issue. This allows for PHP Local File Inclusio...

5.3AI score0.00403EPSS

Exploits0References3

Positive Technologies•added 2026/01/22 12:0 a.m.•4 views

PT-2026-4125

Name of the Vulnerable Software and Affected Versions Pippo versions through 1.2.3 Description The software contains a flaw related to improper control of filename for include/require statements, specifically a PHP Local File Inclusion issue. This allows for the inclusion of local files...

5.3AI score0.00403EPSS

Exploits0References3

Positive Technologies•added 2026/01/22 12:0 a.m.•4 views

PT-2026-4163

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Hobo hobo allows PHP Local File Inclusion.This issue affects Hobo: from n/a through = 1.0.10...

5.5AI score0.00403EPSS

Exploits0References2

Positive Technologies•added 2026/01/22 12:0 a.m.•6 views

PT-2026-4157

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes TanTum tantum allows PHP Local File Inclusion.This issue affects TanTum: from n/a through = 1.1.13...

5.5AI score0.00512EPSS

Exploits0References2

Positive Technologies•added 2026/01/22 12:0 a.m.•2 views

PT-2026-4160

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Pearson Specter pearsonspecter allows PHP Local File Inclusion.This issue affects Pearson Specter: from n/a through = 1.11.3...

5.5AI score0.00512EPSS

Exploits0References2

Positive Technologies•added 2026/01/22 12:0 a.m.•4 views

PT-2026-4154

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Tails tails allows PHP Local File Inclusion.This issue affects Tails: from n/a through = 1.4.12...

5.5AI score0.00512EPSS

Exploits0References2

Positive Technologies•added 2026/01/22 12:0 a.m.•4 views

PT-2026-4162

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes Modern Housewife modernhousewife allows PHP Local File Inclusion.This issue affects Modern Housewife: from n/a through = 1.0.12...

5.5AI score0.00403EPSS

Exploits0References2

Positive Technologies•added 2026/01/22 12:0 a.m.•6 views

PT-2026-4192

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in fuelthemes Werkstatt werkstatt allows PHP Local File Inclusion.This issue affects Werkstatt: from n/a through 4.8.3...

5.5AI score0.00403EPSS

Exploits0References2

Positive Technologies•added 2026/01/22 12:0 a.m.•4 views

PT-2026-4021

Name of the Vulnerable Software and Affected Versions Mikado-Themes Biagiotti versions prior to 3.5.2 Description A flaw exists in Mikado-Themes Biagiotti that allows for PHP Local File Inclusion due to improper control of filename for include/require statements. This issue is related to a 'PHP...

5.4AI score0.00561EPSS

Exploits0References3

CNNVD•added 2026/01/22 12:0 a.m.•3 views

WordPress Plugin Anarkali security vulnerability

8.1CVSS5.8AI score0.00561EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by